Discussion on ReviewIt: Review WordPress & BuddyPress Theme

606 comments found

  • Bought between 1 and 9 items
  • Has been a member for 1-2 years
nineu Purchased

Hi!

I like this theme, but GD Star Rating plugin has disappeared from WordPress because of a big security hole. Is it possible to update the theme to a new rating plugin? or what can we do?

Thanks!

GhostPool

Hi there,

Where did you read that the plugin was removed due to a security hole?

If the plugin is insecure then I will have to replace it with another rating system, however this is not going to be an easy job and will take time.

  • Bought between 1 and 9 items
  • Has been a member for 0-1 years
  • Spain

Hi there Dan,

Nice Theme. A few pre-sale questions if I may:

- Can I change the default sort order? (eg switch from “Date” to “Site Review”)

- Are Reviews & ratings subject to moderation from the admin?

- Does it aggregate the score of all the user ratings and sort on the aggregate?

- Can I have 2 levels of category (eg Sci-Fi > English) and have an index page for each level, showing the only the corresponding entries?

Eg: demo.ghostpool.com/reviewit/genres/sci-fi/ would show all sci fi movies

demo.ghostpool.com/reviewit/genres/sci-fi/English would show just the sci fi movies in English

Note: There does seem to be a problem with the “GD Star Rating” plugin- it’s not possible to download it from http://wordpress.org/support/plugin/gd-star-rating

- Would it still be possible to install and run the ReviewIt theme (in the hope that the “GD Star Rating” plugin gets fixed without any drama).

Thanks!

GhostPool

Hi there,

1) There’s no option to do this but I provide information on how to do this in my FAQs section on the support site.

2) I don’t believe ratings themselves can be held in moderation, but if you restrict ratings to the comments section only, since comments can be held in moderation it also holds the users rating in moderation.

3) No this cannot be done unfortunately.

4) The GD Star Rating plugin is now included with the theme so you will still be able to use it.

  • Bought between 1 and 9 items
  • Has been a member for 0-1 years

Charlie Eriksen has discovered a security issue in the GD Star Rating plugin for WordPress, which can be exploited by malicious people to bypass certain security restrictions.

The security issue is caused due to a missing authentication and authorisation check in the wp-content/plugins/gd-star-rating/export.php script and can be exploited to access otherwise restricted functionality and export potentially sensitive information (e.g. user names, votes, email, and IP addresses). you better change that plugin or it will affect sales, i was planning to buy this also just now but will pass for now.

Default-user
http://www.dev4press.com/2013/blog/announcements/future-of-gd-star-rating/ no good news, the plugin has been cancelled, i guess because of the security issue :(
GhostPool

Hi there,

I have to ask, but did you actually read either of these articles you referenced?

The Charlie Eriksen article you quoted was published in 2012 and clearly says that this security issue was fixed in GD Star Rating v1.9.19 a long time ago.

The second article from Dev4Press explains exactly why they are no longer continuing to maintain GD Star Rating – the main reason being that it the framework is too involved now and requires too much work to maintain. They do say they are planning on offering a new rating plugin in the future. Nowhere does it say this has anything to do with the security issue that was already fixed.

I hope that clears things up for you. :)

Default-user

yes but when you read everything about it, you can see this plugin was really stopped because it is a security risk…why you think its been removed from wordpress…

GhostPool

No I don’t see that all. Please give me a link to a page where it says the plugin was taken down because it is a security risk. As I already said the security risk was fixed over a year ago and the creator of the plugin explained why he removed the plugin which has nothing to do with a security risk.

  • Bought between 10 and 49 items
  • Has been a member for 3-4 years

Would it be to optimize for mobile devices possible the theme?

GhostPool

Hi there,

The theme is not responsive unfortunately, if this is what you’re asking.

  • Bought between 10 and 49 items
  • Has been a member for 3-4 years
felixr Purchased

Blog Page settings >>> Posts Per Page it´s set to 10 by defect, by I just get 5. Either if I change to 20 or 15 just display 5 post per page

Thanks a lot., felixr

GhostPool

Hi there,

If you haven’t done so already please submit your support questions at http://ghostpool.ticksy.com where I will answer them shortly. :)

Sorry for the inconvenience but we do point this out in the help file, item page and your theme options page.

  • Bought between 10 and 49 items
  • Has been a member for 3-4 years
felixr Purchased

HomePage settings >>> Compact/Extended Buttons set to ‘disabled’, right, but if I navegate to a category page, they show up … even they have not any funcionality, I mean doesn´t change either compact or extended

Thanks a lot., felixr

GhostPool

Hi there,

If you haven’t done so already please submit your support questions at http://ghostpool.ticksy.com where I will answer them shortly. :)

Sorry for the inconvenience but we do point this out in the help file, item page and your theme options page.

by
by
by
by
by
by